Manifest

$ rpki-client -vvf rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft
File:                     34071A863A3C6EF2DD36795F45540E2FB68950A0.mft (raw, json)
Hash identifier:          CA2uQ30ivxN/R2xRXYGPkSwhC3FV/tuL1XzdG12PBdU=
Subject key identifier:   E9:7A:39:E5:CD:BB:20:E8:D3:70:55:F9:99:E0:48:58:A8:7B:4E:E9
Authority key identifier: 34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0
Certificate issuer:       /CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0
Certificate serial:       2814159CF7DF3B5561FB5F8F4AF0A07ED976FF25
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer
Subject info access:      rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft
Manifest number:          0794
Signing time:             Mon 20 Oct 2025 11:22:52 +0000
Manifest this update:     Mon 20 Oct 2025 11:17:52 +0000
Manifest next update:     Tue 21 Oct 2025 13:30:52 +0000
Files and hashes:         1: 323430333a666263303a3a2f33322d3438203d3e2033323538.roa (hash: tXrN0zoKF82QapDtfGgfQ/sKCgpFN3PcfxbF24KevGM=)
                          2: 3130332e3132352e3233322e302f32342d3234203d3e2039333132.roa (hash: 5rh5xKoFim9+qzXuz9ue2E9gTTOhHmo70qMX7Q8lZTQ=)
                          3: 3130332e3132352e3233322e302f32322d3234203d3e203433333537.roa (hash: AO++rM3N1jO7O7HYsegCBlM8+c2spUzQgRM1Fitv+rQ=)
                          4: 34071A863A3C6EF2DD36795F45540E2FB68950A0.crl (hash: CyRIVqSeYxBOVLrd/heFsLYQxh7OTOZcnY7BBCHUph0=)
                          5: 3130332e3132352e3233322e302f32322d3234203d3e203233393539.roa (hash: VZm+1A419bpjhNHk7oa8SlaXnBnjm4UoiyMj6yzbhMQ=)
                          6: 323430333a666263303a3a2f33322d3438203d3e203233393539.roa (hash: cDTbMfGHTly+QeOfyQG+o4pg0zroCRCYVzgE6JjA/GY=)
                          7: 323430333a666263303a613030303a3a2f34382d3438203d3e20323132353132.roa (hash: hJxx3nr/lfwP0kEgV9nZ8LhD9nuKvmRGXnwzZAzg9w0=)
                          8: 3130332e3132352e3233332e302f32342d3234203d3e2039333132.roa (hash: pZv8WRdNlBV4IKDx6bNv7oBg2N/5UFROImiToIit/aA=)
                          9: 3130332e3132352e3233322e302f32322d3234203d3e2033323538.roa (hash: cLW/biMRwR7zRrRPFacawZTNPUq9jmMexiFzyeHhVJ4=)
                          10: 323430333a666263303a363030303a3a2f34382d3438203d3e20323132353132.roa (hash: SPVnXgzc6DdCcPNaKseycoy7ZTTw0qv3w3c7rqopVw0=)
                          11: 323430333a666263303a613030313a3a2f34382d3438203d3e20323132353132.roa (hash: DNK4vnrgAUMBFTQF62of1cSQgwMSTE8r5u7W1r1aQzI=)
                          12: 323430333a666263303a3a2f33322d3438203d3e203433333537.roa (hash: lWIr6sYh7jORalo3knn4O8Tkqys/QMzZOqOsz0HK/gg=)
                          13: 323430333a666263303a613030323a3a2f34382d3438203d3e20323132353132.roa (hash: enaySFUpt7HUACHfd9TuXH57K0gEe6gPHzhcz9XFJXs=)
Validation:               OK
Signature path:           rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl
                          rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 21 Oct 2025 13:30:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            28:14:15:9c:f7:df:3b:55:61:fb:5f:8f:4a:f0:a0:7e:d9:76:ff:25
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91FA6830000, serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0
        Validity
            Not Before: Oct 20 11:17:52 2025 GMT
            Not After : Oct 21 13:30:52 2025 GMT
        Subject: CN=E97A39E5CDBB20E8D37055F999E04858A87B4EE9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:be:a2:ce:8f:16:79:d0:6a:05:36:48:bd:7d:
                    36:4f:02:e7:16:86:6c:81:d4:69:a5:90:81:4a:4b:
                    b1:61:ea:f1:38:7e:81:7c:ab:54:67:d3:2c:ca:10:
                    b4:ff:8d:0b:bd:77:bb:aa:9f:fd:24:9a:11:d1:71:
                    eb:f8:d2:ca:73:a2:73:85:da:d2:7c:ae:f9:fa:d3:
                    f3:c5:1c:20:c4:39:9f:95:61:4f:d1:06:d9:e3:e6:
                    11:52:b5:ee:ac:dd:45:f0:8f:cd:50:d1:fe:ad:7c:
                    ef:ef:72:a9:3a:c9:1b:1f:a7:dc:6b:30:35:33:f0:
                    21:be:df:28:00:40:f1:3d:a7:11:7f:05:58:e7:a9:
                    9b:a7:28:d2:f5:be:4f:43:c0:11:ec:51:3d:39:ed:
                    68:b5:f7:8b:b7:33:51:47:b1:50:b2:f0:25:dd:ae:
                    cf:ab:7b:39:7a:fe:c6:85:7e:88:2e:70:2b:90:2a:
                    64:97:94:df:ec:bd:ce:ad:83:d7:67:34:2e:d1:50:
                    c2:b4:6b:c9:c0:15:fe:0a:e9:43:a8:07:65:7e:dd:
                    d8:56:fb:57:8b:49:b4:8d:4a:6b:a3:f4:92:21:f7:
                    06:54:ed:c1:54:c4:0b:ee:bd:2b:fb:05:8e:67:90:
                    5c:2f:fc:84:4a:29:9a:5e:d2:d3:81:c9:9f:e1:3e:
                    57:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E9:7A:39:E5:CD:BB:20:E8:D3:70:55:F9:99:E0:48:58:A8:7B:4E:E9
            X509v3 Authority Key Identifier:
                keyid:34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6b:c2:ea:e6:5c:04:fc:b2:e5:1d:9e:1c:5a:4f:ee:aa:4b:34:
         06:e6:6a:c4:06:a1:d3:78:6b:dc:13:6e:c3:d9:88:35:53:7b:
         04:e5:db:c8:47:cb:71:37:2f:a0:ac:66:a6:53:5a:fd:f2:ab:
         36:a4:19:fa:8d:6b:e3:1c:5d:6a:b8:e1:2c:36:11:44:ba:e0:
         c7:60:41:9b:9f:c0:38:ba:86:03:0d:77:65:77:38:06:c5:b6:
         f3:c2:ce:39:34:89:1e:a1:34:79:b8:e1:55:7d:27:b3:34:83:
         0a:96:a6:65:28:92:cd:21:75:20:43:e6:3a:ab:29:1f:09:e4:
         ee:da:17:4d:e5:c0:b7:31:3c:7f:95:16:05:6d:21:36:fc:29:
         57:c9:23:19:40:06:7d:d8:37:39:0f:4b:9d:68:c0:d1:a1:74:
         20:bb:be:d3:29:17:bf:92:17:59:9c:13:71:c4:06:d9:1b:e4:
         00:ff:de:ce:dc:7a:db:d8:e0:c1:5e:c2:0f:bc:42:8f:f9:d3:
         75:75:95:49:66:cd:3c:93:c8:41:37:6a:83:b9:03:e5:0a:31:
         5f:26:61:78:2c:e2:01:75:65:1b:62:99:85:aa:91:a1:35:b0:
         f4:7f:a2:1d:a6:e2:bb:54:48:8c:fa:19:0f:33:a7:57:5b:3e:
         e9:ac:63:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 15:54:21 2025 by rpki-client